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Our third annual awards honor CTOs who are leading 
their companies — and the industry — to better times 


much noise. Since the boom, there has been too little money. So, to lead their 
organizations into better times, our 25 honorees had to get creative in 2003. 
Fortunately, they're a creative group. Many of them speak explicitly about art 
and architecture, as well as the elegance that comes from a well-designed system. 
Still others exult that their job enables them to turn a conceptual drawing into con- 
crete reality. The bridge from dream to deployment is not the only chasm they span. 
These visionary technology leaders say they are fundamentally chartered with 
keeping one foot in the present and one foot in the future. These CTOs distin- 
guished themselves in 2003 by driving initiatives that both influenced their com- 
panies internally and their industries externally. They've kept the engines of cre- 
ativity humming so that they're poised to deliver new ideas and products just as 
their customers are beginning to invest again. 


I T'S NEVER EASY TO EVANGELIZE. DURING THE BOOM, THERE WAS TOO 
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Yuval Ben-Itzhak 


To survive the economic downturn, 
KaVaDo CTO and co-founder 
Yuval Ben-Itzhak focused on 
designing security software that 
provides customers with an imme- 
diate payback. The Tel Aviv-based 
company’s Web application scan- 
ner and firewall products proac- 
tively define acceptable behavior with respect to Web appli- 
cation use, rather than reactively target specific patterns 
and signatures that require continuous updates. 
Ben-Itzhak conceived the software and participates in 
several standards groups, including Open Web Security 
Application Project’s VulnXML Project Committee and 
OASIS's Web Application Security Technical Committee. 
"The people on the committees are competitors,” he says, 
“but behind the scenes, we're trying to shape the market.” 
He notes that CTOs have to balance legacy and future 
applications. “The CTO needs to predict [growth patterns] 
in order to deliver the right vision at the right time,” he says. 


> CTO and co-founder 


> KaVaDo 
> kavado.com 


Tom Bishop 


As 2003 closed, 40 corporate rep- 
resentatives from companies 
belonging to the Open Group — 
including Sony, Boeing, and Shell 
— elected Tom Bishop to lead an 
initiative to define standards for * CTO 
monitoring disparate hardware F VIEO 
and software resources. It wasan 7 Wwwvico com 
impressive honor, considering that EMC, Fujitsu, Hewlett- 
Packard, Hitachi, and IBM executives are part of the ini- 
tiative, and one for which he is uniquely qualified, based 
on the previous standards efforts he's spearheaded for 
DMTF and Posix. Also, as CTO of VIEO, Bishop led the 
development of an automated infrastructure-management 
appliance that intuits the relationship between network 
devices and prioritizes resources among them. 
Developing the VIEO 1000 AAIM requires Bishop to 
track everything from networking and application models 
to even the genetics of programming. “The biggest chal- 
lenge is staying on top of all those technologies,” he says. 


‘The hardest thing is making people understand that if you don’t change an obsolete 
process and just add new technology, you get the same result.’ 


Edouard Bugnion 


As do most CTOs, Edouard Bugnion thinks a lot about 
architecture. But as chief architect and co-founder of 
VMware, he thinks more about the management of 
machines from a virtual standpoint. He shepherded the 
development of the company’s 2003 release, VirtualCenter, 
which is designed to manage the machines that corpora- 
tions will link into the grids of utility-based computing. 

Thanks at least in part to Bugnion’s contributions, stor- 
age vendor EMC bought VMware 
in December 2003. As a result, he’s 
already started thinking about the 
convergence of virtual servers with 
virtual storage. 

“The server world and the data 
world have been managed sepa- 
rately and physically,” he explains. 
“Converging the two into a single, 
homogenous platform will give 
companies more flexibility and 
manageability.” 


> Chief architect and 
co-founder 


> VMware 
> vmware.com 


— Kimberly N. Ellison-Taylor, Prince George’s County, Md. 


Kimberly N. 
Ellison-Taylor 


Prince George's County, the second 
largest county in Maryland, does * TO 
not have the budget that Washing- 7 Cee 
ton, D.C. has, but CTO Kimberly > mU SUE TO 
N. Ellison-Taylor has similar secu- | com 
rity concerns. “Our airports, water- 
ways, and bridges are targets that could be used to get to 
the Capitol,” she notes, adding that her jurisdiction has 
dealt with hurricanes and blackouts in the past year alone. 
“Data is coming in from so many different avenues, but it 
has to translate to relevant information,’ she says. “How do 
you share data and make sure the right people get it?” She 
focused on data sharing and e-government during 2003, 
not only for her county's 26 municipalities but also in the 
broader region. Shes active in the organization that brings 
together local and state IT directors. “We work as a team 
to understand the fiscal and administrative impact [ of IT ] 
to our respective counties,” she says. 


38 


INFOWORLD.COM 01.26.04 


Gerhard 
Eschelbeck 


With connectivity comes vulnera- 
bility, a topic that preoccupies Ger- 
hard Eschelbeck, CTO and vice 
president of engineering at Qualys, 
which uses Web services to provide 
on-demand security audits. In 
2003, he conducted real-world 
research on security problems, looking at impact and 
prevalence, and testified about his results before Congress 
in September. The FBI and the SANS Institute also con- 
sulted Eschelbeck in compiling their list of top 20 vulner- 
abilities, and more than 1,200 customers (including 
Hewlett-Packard and Mercedes-Benz) use Qualys’ service. 
But Eschelbeck, one of two CTOs to be named to our list 
twice, believes that the security industry has its work cut 
out for it. "The key is to define and implement standard- 
ized interfaces based on XML that can be adopted and sup- 
ported by the security community at large,” he says. 


> CTO and vice president 
of engineering 

> Qualys 

> qualys.com 
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Joshua Fost 


Joshua Fost faces a tremendous coordination challenge 
as the first CTO of Colliers International USA, an 
$880-million consortium of 56 independently owned real- 
estate companies in 51 countries. Example: At the end of 
2003, after a two-year campaign led by Fost and Marketing 
Vice President Karen L. Galvin, Colliers finally launched 
globally coordinated Web sites, featuring content appear- 
ing in 14 languages. 

On the infrastructure side, he’s coordinated a global 
directory that integrates the con- 
tact information from each com- 
pany’s e-mail servers, which may 
be running Exchange, Notes, 
Groupwise, or even outsourced 
e-mail applications. “My favorite 
thing is having a person come to 
me with a problem and then deliv- 
ering something that’s faster, 
cheaper, and easier to use than Z CTO 


x ; > Colli i 
they evor imagined; Fost says. Colliers International USA 
> colliers.com 


|'m a huge technophile. Computers are as close as we can 
come to omnipotence.’ 


Yogesh Gupta 


CTO Yogesh Gupta thinks of Computer Associates as a 
giant toy chest. “We have so many building blocks of 
technology to build from,” he says. But there's nothing 
playful about Gupta's work. 

A conversation with the chief security officer of the 
Federal Aviation Administration, who wondered how to 
prioritize security alerts from multiple products, inspired 
Gupta to create — in less than a year — software that fil- 
ters out duplicative and irrelevant alerts. 

And there are more products 
to come. Under Gupta's direction, 
Computer Associates has focused 
on internal R&D, spending 
$650 million annually during the 
past three years. Whereas most 
companies spend 10 percent of 
revenues on R&D, CA spends 24 


EEE percent. “When you have that 
fam COMRULE Associates kind of commitment,’ Gupta says, 
> ca.com 


“how can you not love your job?” 


— Joshua Fost, Colliers International USA 


Raymond Karrenbauer 


In 2003, CTO Raymond Karrenbauer brought plug-and- 
play to app dev and systems deployment at ING Group, the 
$450 billion worldwide financial-services company. He cre- 
ated architectural diagrams — encompassing applications, 
hardware, networking, and integration — that focused on 
reusability and adaptability of both data and design. “Some- 
one can look at the patterns in the component-based refer- 
ence model and see how a Web application is deployed and 
just snap together the pieces,’ Karrenbauer says. 

Because data is shared, ING will 
enjoy significant benefits in terms 
of data quality and business intel- 
ligence. The result, deployed across 
27 lines of business in America and 
ready to go worldwide, gives ING 
the flexibility to be responsive to 
new business opportunities. Some 
competitors, he says, are working = CTO 
on similar concepts, but he and his Z ING Group 
company are the first to deploy it. esa 
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Jim Kirkley 


Because CTO Jim Kirkley believes 
in balance, he’s concerned about 
the Internet’s ecosystem being 
thrown out of whack by electronic 
pollution. “Spam and hackers are 


j= Gate) polluting our environment, and 
ia = this could become a major problem 
> qad.com 


for b-to-b integration,” he says. 

At QAD, which specializes in enterprise software for 
manufacturers around the world, Kirkley carries this desire 
for balance into the design of the company’s supply-chain 
management applications. “Something is wrong if a design 
doesn't have symmetry,’ he says. It forces him to wonder, 
“Have we left out a component?" 

In the past year, Kirkley has moved QAD solely to a 
hosted solution, and his efforts have also led the indus- 
try in terms of how supply-chain information is 
communicated between machines — that is, with or 
without human intervention — and how it is visualized 
and accessed by suppliers along the chain. 


Srinivas Koushik 


“Unlike other industries, we sell 
trust and information,’ says Srini- 
vas Koushik, enterprise CTO and 
vice president of $117 billion insur- 
ance company Nationwide, adding 
that its information has to be > Enterprise CTO and 
secure, private, and available at al] _Mce President 

times. “But also unlike other indus- © Nationwide 

2 ; j > nationwide.com 
tries, we don't have anything close 
to the supply-chain efficiencies they have,’ he says. 

Moving Nationwide toward that efficiency took up most 
of his time in 2003. The company implemented a state-of- 
the-art policy-management system, which allows its agents 
to sell and service policies online. The former is common- 
place, Koushik says; the latter is not. 

To keep Nationwide on the cutting edge, Koushik also is 
spearheading an effort to use Web services to streamline 
Nationwides relationships with insurance agencies. This 
initiative would link third-party agency management soft- 
ware to his company’s proprietary back end. 


‘It’s absurd to say IT doesn’t matter. We are at the end of the beginning, 
rather than the beginning of the end.’ 


Ashish Kumar 


To Ashish Kumar, it’s all about 
eating his own dog food. As 
CTO of Avanade, the joint 
venture between Accenture and 
Microsoft that offers systems 
integration, he realizes that no 
customer wants to be the first to 
use a technology, so his company must. 

But 2003 was more about helping customers survive 
than paving the way with new technologies. “We saved our 
customers $100 million just in server consolidation,” 
Kumar explains. “It wasn't so much the hardware cost but 
the cost of management.” 

Kumar encouraged customers to rein in their spending 
by also deploying Web services instead of more costly 
application-integration solutions. 

For Kumar, being a CTO is as much about balancing 
communication as it is about balancing budgets. “You need 
technical credibility with engineers, but you can't talk over 
the head of the executives,” he says. 


> CTO 
> Avanade 
> avanade.com 


— Ashish Kumar, Avanade 


Brad Kummer 


Brad Kummer spent 25 years at Bell Labs doing R&D on 
optical-fiber-based systems, and then in 2000 he was lured 
to ISP Cogent Communications for a once-in-a-lifetime 
opportunity: to design an all-optical, data-only network. 
He built an 80Gb backbone that spans almost 
20,000 miles and 21 cities in North America. Reputedly 
offering six times the bandwidth of a T1 connection at the 
same price, Kummer’s backbone supports Radio Free 
Virgin's streaming audio, Weather 
Underground’s real-time weather 
data, and two major stock 
exchanges among others. 

But this CTO and vice president 
of optical transport stands for sim- 
plicity above all else. “Of the new 
products offered in telecom,’ Kum- 
mer says, “95 percent have too > CTO and vice president 
many features, features that I don't | of optical transport 
need or want and only increase the 
cost and complexity of the network.” eee 


> Cogent Communications 
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Jerry McElhatton 


As MasterCard International’s CTO 
and senior executive vice president 
of global technology and opera- 
tions, Jerry McElhatton only wor- 
ries about two things: his customers 
(banks that issue credit cards) and 
his customers’ customers (con- 
sumers who use credit cards). That 
translates into two areas: perfor- 
mance and security. The point-of- 
service terminal has to work and so does the card. 

In 2003, those simple goals translated into some big pro- 
jects under McElhattons purview, which includes a global 
staff of approximately 2,700 with a $100 million payroll. 
But his biggest win has been a five-year, $160 million 
upgrade of MasterCard's global payment processing plat- 
form, which accounts for as many as 40 million transac- 
tions per day, completed in 2003. Last year, for the first 
time, MasterCard surpassed its competition to become the 
No. 1 card issuer in the United States. 


> Senior executive vice 
president, global 
technology & operations 


> MasterCard International 
> mastercardintl.com 


Phyllis Michaelides 


Phyllis Michaelides spent 2003 ensuring that Textron’s 
44,000 employees are who they say they are. As chief tech- 
nologist ofthe $10 billion conglomerate, with divisions that 
include Bell Helicopter and Cessna, she deployed an ID 
management system that encompasses both authentica- 
tion and authorization. 

Although regulatory requirements such as Sarbanes- 
Oxley spurred the project, she wanted Textron to 
stay ahead of the curve. So she led the creation of 
an enterprisewide system that uses metadirectories 
and takes a unified, centralized 
approach to identity and policy 
management. But because Tex- 
tron doesn't impose a unified 
infrastructure, her greater chal- 
lenge is determining where to 
best share technology. “Finding 
those core pieces is the most 
exciting part of my job,” says the 
two-time CTO 25 honoree. 


> Chief technologist 
> Textron 


> textron.com 


‘| love the excitement of going from concept to test to 
implementation.’ 


Steve Orrin 


When it comes to enterprise security, Steve Orrin believes 
in building it in rather than tacking it on. The CTO of Sanc- 
tum spends much of his time evangelizing the importance 
of embedding security in applications. To that end, he is 
active in two OASIS working groups established in 2003. 
The WAS-XML working group focuses on Web applica- 
tion security; Orrin is also working on formulating the 
Application Vulnerability Description Language, which 
will uniformly describe application security vulnerabilities. 

Within Sanctum, early last year, 
Orrin led the development of App- 
Scan DE, an automated testing 
tool that helps developers create 
secure Web applications using 
either Microsoft .Net or Java code. 
Orrin has also led his company’s 
development of software that 
searches the Web for purloined 
documents, which companies use 
to prove that data has been stolen. 


r= (CU) 


> Sanctum 
> sanctuminc.com 


— Phyllis Michaelides, Textron 


Greg Papadopoulos 


For years, Sun has been saying, “The network is the com- 
puter.” Last year, CTO and Executive Vice President Greg 
Papadopoulos put a key part of that concept into practice 
with its N1 system architecture. Deployed at more than 100 
customer sites, including Cingular and DaimlerChrysler, the 
distributed and dynamically provisioned computing archi- 
tecture is a step forward in harnessing the data power of dis- 
parate computers and giving critical applications priority. 

Papadopoulos’ work will also 
take the industry one step closer to 
the concept of grid or utility com- 
puting. “The greatest CTOs that I 
know are the ones that take archi- 
tecture seriously,” he says, a 2003 
InfoWorld Innovator. “Architecture 
guides the constraints and shows 
what's important and what isn't. It > CTO and executive 
bridges the creativity of the engi- | Vice president 
neer to something that can achieve 
a high impact for the company.” 


> Sun Microsystems 
> sun.com 
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Shane V. Robison 


Last April, Chief Strategy and Technology Officer and Exec- 
utive Vice President Shane V. Robison gathered 500 of the 
brightest engineers from every division of Hewlett-Packard 
for the first time — a savvy move of technological cross- 
pollination. Engineers competed for invitations; 1,500 
submitted papers online the first day, crashing the server. 

These meetings — as well as those of a customer advisory 
board he formed after the merger with Compaq — help 
Robison in his strategic planning for HP. He spent 2003 
putting into place the unique con- 
cept of formulating different busi- 
ness models for different products, 
depending on where they are in 
their maturity cycles. “We have to 
shepherd new businesses as they 
grow from their embryonic phase,” 
he says. “My role is to make sure 
they get the care and feeding they 
need so we can integrate them into 
the larger business later.” 


> Chief strategy and 
technology officer and 
executive vice president 

> Hewlett-Packard 

> hp.com 


Thomas Sanzone 


The financial powerhouse Citi- 
group may not have a CTO, but it 
does have Thomas Sanzone, CIO 
of its $20 billion Global Corporate 
and Investment Bank. Responsible 
for the technical infrastructure of » CIO, Global Corporate 
the division, which operates in 100 [204 Investment Bank 
countries, he leads the $100 billion z Citigroup 
, : > citigroup.com 

conglomerate's working group for 
application development. In 2003, his group deployed 
CitiVision, a Web services-based portal application that 
delivers real-time information to investment bankers in 
100 countries and allows them to prepare personalized 
portfolios for customers and share updated information. 

In the past, Sanzone believes, technologists were reac- 
tive. Hes overseeing his technology group within Citigroup 
to be proactive. "Our business partners depend on us to be 
innovators and show them how technology can give them 
a competitive advantage,” he says. He's using technology to 
help both Citigroup and its customers be competitive. 


'Keep an open mind about exploring new ideas and concepts, because 


the impossible is more than likely to happen.’ 


Wade Schott 


Under Wade Schott's leadership, General Dynamics in 
2003 became the fourth company to reach the highest level 
ofthe Software Engineering Institutes Capability Maturity 
Model — and it did so in less than a year, when the process 
can take three times as long. 

"Reaching this level is key in getting government 
contracts,” says Schott, CTO of the company's Advanced 
Information Systems group, “but 
from a philosophical standpoint, 
it’s also how you challenge yourself 
and improve your quality.” 

Schott also serves as the leader of 
the defense contractor's Technology 
Council, through which he speaks 
to the companys customers in the 
U.S. intelligence community about 
the global realities of the 21st cen- 
tury, as well as helping other divi- 
sions move from platform-centric 
to network-centric computing. 


> CTO and vice president 
of engineering 


> General Dynamics, 
Advanced Information 
Systems group 

> generaldynamics.com 


— Shane V. Robison, Hewlett-Packard 


Charles W. Stevenson 


Perhaps no CTO dealt with more daunting financial con- 
straints in 2003 than Charles W. Stevenson. As CTO, COO, 
and executive vice president of Gupta Technologies, a data- 
base tools developer spun out of its parent company (which 
later went bankrupt), Stevenson cut development costs by 
20 percent and technical support costs by 40 percent. At 
the same time, the $20 million company has managed 10 
straight quarters of profitability. 
Stevenson focuses on Gupta’s 
.Net and Linux tool strategies, but 
sees their drawbacks: “.Net is weak 
in providing enterprise scalability, 
and Linux is like McDonald’s.” He 
is leading the charge to give cus- 
tomers flexibility, and in doing so, 
acting as a peacemaker for those 
who require both. “Web services »® CTO, COO, and 
may allow us to bridge the gaps executive vice president 
regardless of where or on what OS 
information may run,” he says. 


> Gupta Technologies 
> guptaworldwide.com 
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Scott Thompson 


On the last day of holiday shop- 
ping in 2003, consumers were 
buying presents with Visa credit 
cards at the lightening-fast speed 
of 5,119 transactions per second. 


mele But Visa USA CIO Scott Thomp- 
mol son doesn't consider that a big 
> visa.com 


accomplishment. Rather, he's 
most proud of a new fraud-identification system he and 
his staff deployed in 2003 that ranks a transaction's 
potential for being suspect in real-time. Because the sys- 
tem looks at possible fraud among both customers and 
merchants, he explains, it has value for both the bank 
and the merchant. 

For Thompson, his fraud identification system is hardly 
the only thing to run in real time. ^Everything we install 
has to work in 196 countries around the world from the 
moment you install it,’ he explains. 

“There's no maintenance window. If you mess it up, mil- 
lions of people notice.” 


Gordon 
Van Huizen 


This CTO envisions a world in 
which application integration is 
widespread and achieved on a 
manageable basis. At Sonic Soft- * CTO 
ware, Gordon Van Huizen has led % Sonic Software 
the development of a foundation 7 Su So weem 
for an application infrastructure that combines messaging 
and XML in a standards-based integration platform. 
Dubbed the ESB (enterprise service bus), it’s seen world- 
wide deployment at 1,500 customers, including Northrop 
Grumman, Philips Electronics, and Seiko Epson. In 2003, 
analyst firm IDC predicted that ESBs will be the basis for 
flexible, scalable distributed computing for years to come. 
Van Huizen is encouraged to see other companies take 
up his mantra of manageable integration. “When you 
embark on a journey that’s way off on the horizon and the 
odds aren't in your favor, it’s gratifying to see other vendors, 
such as IBM, moving in your direction." 


'My role as a tech provider is to keep the company at 
the leading edge.’ 


— John Watkins, Fairchild Semiconductor 


John M. 
Watkins Jr. 


At the company that launched a 
million chips, Fairchild Semicon- 
ductor CIO and Senior Vice Presi- 
dent John M. Watkins Jr. has two 
major challenges: serving the IT 
needs of 10,000 employees worldwide and keeping the 
company ahead of the competition. 

To those dual ends, Watkins led the creation in 2003 
of an e-business platform that integrates and standard- 
izes processes in manufacturing, engineering, and 
administration. The system provides information to 
more than 50,000 customers, channel partners, and 
suppliers about Fairchild Semiconductor’s 20,000-plus 
products while giving managers real-time performance 
metrics. ^My job is to keep the company at the leading 
edge,’ Watkins says. “It’s not for me to beat up the CEO 
for more money; it's for me to make him understand 
what he'll miss if we don't invest.” 


> CIO and senior 
vice president 


> Fairchild Semiconductor 
> fairchildsemi.com 


Fred Weber 


Fred Weber, AMD’s CTO and vice president of engineer- 
ing of its Computation Products Group, believes the semi- 
conductor manufacturer is about to step out from under 
Intel’s shadow. If so, it’s in no small part thanks to his 
efforts during the past five years as the leader of AMD's 64- 
bit development efforts; Weber became CTO in 2001. 
AMD’s delivery in 2003 of the industry’s first 
x86-compatible, 64-bit processors 
— the Opteron and Athlon 64 — 
exemplifies this CTO’s passion of 
“innovation within standards.” 
“English is a beautiful language 
because we add to it rather than 
throwing it away every 20 years for 
something else, Weber says, 
explaining that this philosophy is > CTO and vice president of 
both a personal and a corporate 
strategy. “The art of technology is 
in synthesizing the rules to create 
something of beauty and utility.’ 


engineering, Computation 
Products Group 
> AMD 


> amd.com 
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Barry J. West 


Differentiation in the mobile phone market is hard to come 
by, but Nextel Communications’ Direct Connect feature sets 
the company apart. CTO and Executive Vice President 
Barry J. West, a 25-year veteran of British Telecom, in 2003 


What Was the Greatest Challenge You Faced in 2003? 


Creating financial efficiency i 11 
Enterprise integration BEEN 4 
Getting a handle on new technologies NS 3 
Deploying XML and Web services |-0 
Maintaining enterprise security | 0 


led Nextel in extending this “walkie-talkie” feature. Now Offshoring |-0 
Customers can use it nationwide as well as regionally. Staffing |-0 
West’s next project: “vocoder” technology, which will Other Bg 1 


enable the company to double the voice capacity of its wire- 
less network without spending billions on upgrading base 
stations. Because ISVs also develop data applications for 
Nextel's phones, West's efforts to 
expand the network form the 
underpinning of possible advance- 
ments to mobile communications. 
He recognizes that maintaining 
progress for cutting-edge tech- 
nologies isn't easy. “It is always 
tempting in a financial crunch to 
target programs with long payoffs, 
butthe CTO has to be the guardian 


What Do You Anticipate Will Be the Greatest Challenge 
in 2004? 


Enterprise integration 7 
Creating financial efficiency (ny 4 
Deploying XML and Web services Ny 3 
Getting a handle on new technologies NNN 2 
Maintaining enterprise security 1 
Offshoring BEN 1 
Staffing |-0 


Other 1 


> CTO and executive 


vice president NOTE: SURVEY RESPONSES FROM 19 OF THE 25 HONOREES 


> Nextel Communications 
> nextel.com 


of the future,’ he says. 


‘The CTO function is one of 


guardianship for the future.’ 


— Barry J. West, Nextel Communications 


Four Up-and-Coming CTOs to Watch 


AMONG THE INFOWORLD CTO 25 APP- 
licants, we found four special executives 
whom we wanted to cite for their for- 
ward-thinking and leading-edge activi- 
ties. Not surprisingly, three of them work 
at security firms, where they believe 
strongly in the concept of building in se- 
curity rather than bolting it on later; the 
fourth is focusing on reusing compo- 
nents in Java and .Net. 

Carl E. Banzhof, CTO of Dallas-based 
Citadel Security Software, eats, breathes 
and sleeps security management. His 
company’s Hercules software, which he 
designed, fixes potential security holes 
identified by other vendors’ vulnerability 
scanners. Banzhof is also on the board of 
Open Vulnerability Assessment Language, 


which aims to establish standards for 
identifying and naming vulnerabilities. 

Brent Carlson, vice president of tech- 
nology and co-founder of LogicLibrary, is 
on the forefront of migrating Java-based 
code to the .Net framework while pre- 
serving the basic Java capabilities after 
it’s recompiled. As a result, common 
functionality is maintained on both 
sides, and developers can leverage ex- 
pertise no matter which platform they’re 
comfortable with. 

Gene Kim, CTO, vice president and 
co-founder of Tripwire, works with both 
the Software Engineering Institute and 
SANS on security issues. His forte is 
studying IT shops that are highly efficient 
when it comes to security to develop best 


practices (an SEI report is due next 
month). “Security has far more to do with 
repeatable, verifiable IT operational 
processes,” he says, “along with the ruth- 
less determination to detect and reduce 
operational variance.” 

Mamoon Yunus, CTO and co-founder 
of Forum Systems, splits his time 
between customers and standards 
groups. Forum’s XML security hardware 
helps Fortune 100-ranked MassMutual 
meet the privacy regulations of the fed- 
eral government. Yunus also participates 
in the XML Working Group and xml.gov 
to educate various government agencies 
about XML and Web services security and 
the use of message-centric security. e$ 
— H.B. 


Silicon Valley-based freelancer Howard Baldwin (howardbaldwin@pacbell.net) was formerly executive editor of Line56 and senior editor at CIO. 
His work has also appeared in CIO Insight, Upside, and Electronic Business. 
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